Flash safer in Chrome?

I read a review of Chrome http://www.pcmag.com/article2/0,2817,2373860,00.asp
that implies that Google's implementation of Flash is safer because Flash is sandboxed and thereby limited in the damage that can be done. Any thoughts on how significant this is?

My question is "is it safer?". I think that says what I am interested in finding out.

Click to expand...

Yes, it's safer. Google Chrome sandboxes Flash Player, making it more difficult for exploits against it to succeed. Not to mention that when a new Flash Player version comes out, you'll be automatically updated, because Google Chrome already comes with Flash Player. One less headache for many people.

Chrome secures Flash in 3 ways:
1) They get developer preview versions of Flash before the release, which often contains patches before they've been released.
2) Chrome automatically updates Flash.
3) Chrome sandboxes Flash. It's been very effective with no exploits in the wild breaking through the sandbox.

If you run the PPAPI Flash (Pepper) it will run with Chrome's sandbox instead of the plugin sandbox. I think you can then run PPAPI flash in the renderer, which further restricts it to the renderer sandbox, which is very locked down. Not sure.

Chrome secures Flash in 3 ways:
1) They get developer preview versions of Flash before the release, which often contains patches before they've been released.

Click to expand...

Okay, stupid question #1:

Is there a difference between *installed* versions of Chrome and portable versions with respect to Flash? The reason I ask is because I have the portable version of Chrome and it's showing 2 locations for Flash; the first is the "Chrome version" (...App\Chrome-bin\15.0.874.121\gcswf32.dll) and the second is the regular plugin for all other plugin-based browsers (...WINDOWS\system32\Macromed\Flash\NPSWF32.dll) and both show the identical version number (11.1.102.55).

Hungry Man said:

2) Chrome automatically updates Flash.

Click to expand...

Stupid question #2:

Does Chrome actually update its version of Flash *or* does Google release a new build of Chrome *each time* Flash is updated?